This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft File: IY2yiCPzcIslWqEkum73QdET6vM.mft (raw, json) Hash identifier: kuPWnzHL4sLAdGNFxItjLpEauSP0ChGQ4Lu20wm81/g= Subject key identifier: 8B:C8:A4:95:BF:A7:45:E3:65:46:AE:90:68:C1:E5:A4:E7:BC:BC:B3 Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3 Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3 Certificate serial: 019B50A9855ED74B61C987E49659FF56EB86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft Manifest number: 0F8D Signing time: Wed 24 Dec 2025 14:00:45 +0000 Manifest this update: Wed 24 Dec 2025 14:00:45 +0000 Manifest next update: Thu 25 Dec 2025 14:00:45 +0000 Files and hashes: 1: HaSDza_YVtRITzJIrQ3cs39clVI.roa (hash: MJ8iuClDZO6N2HHVvtqNHlRWHvmySc+prn9LGP/6I2Y=) 2: IY2yiCPzcIslWqEkum73QdET6vM.crl (hash: 1s18ZY3z+oW1+3tgq33eFAVsisZXiF67OZ8S+33k7so=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:50:a9:85:5e:d7:4b:61:c9:87:e4:96:59:ff:56:eb:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3 Validity Not Before: Dec 24 14:00:45 2025 GMT Not After : Dec 25 14:00:45 2025 GMT Subject: CN=8bc8a495bfa745e36546ae9068c1e5a4e7bcbcb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:0a:e7:52:89:16:3f:52:35:d2:11:81:c7:aa: f2:10:b9:ca:cd:87:b4:30:a3:8f:e3:dc:40:15:68: 53:85:7c:19:34:3f:36:fe:5d:d0:39:6f:23:38:22: 0c:72:82:9f:9e:7f:12:7e:3e:47:b7:22:12:e5:41: d4:c2:62:d2:b7:51:64:94:4c:4d:b1:09:10:21:d8: da:88:9f:cc:09:1f:1f:98:a0:3e:f5:9c:d9:b2:f6: da:70:c4:80:dd:7a:b6:a4:44:49:59:db:a7:fe:71: cb:02:9c:83:bf:e0:02:5f:c6:ad:ab:1d:60:67:1b: 14:14:3a:a6:13:1b:27:5e:8d:a1:58:16:3f:cc:81: d1:70:5a:68:9b:b5:cb:c5:ab:6d:69:e6:46:4f:1f: b5:a4:2b:88:e4:69:c0:5e:5b:cc:9b:0d:50:12:b8: cf:b2:23:2a:ef:a8:be:a2:06:d0:de:91:0b:c5:99: 46:26:31:57:62:d5:48:c8:23:17:ed:c3:5f:cb:75: 5f:56:65:38:d3:9a:bd:55:43:63:e9:11:c5:a3:57: 8d:69:8a:e3:5d:95:5d:7d:30:41:88:7e:e4:69:f5: 6d:31:e6:65:06:23:74:dd:b3:36:ff:5a:20:c8:ef: fc:d4:67:5f:e0:78:1a:79:d9:75:83:3d:ce:36:ac: e1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C8:A4:95:BF:A7:45:E3:65:46:AE:90:68:C1:E5:A4:E7:BC:BC:B3 X509v3 Authority Key Identifier: keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:ce:71:ef:49:43:c8:c6:51:1e:ec:9f:a8:28:29:a8:76:89: 22:50:2d:d3:fa:1c:f6:88:13:32:5c:27:15:3f:68:7f:b1:06: 50:16:a0:53:a5:3b:0d:f5:f4:0a:be:00:ca:75:4b:24:06:d4: ee:aa:95:d4:17:bc:05:97:20:e7:71:b2:93:9f:c9:33:df:63: 47:bb:55:fb:9e:23:db:3f:38:1b:15:9c:03:4e:ee:ba:e9:60: 4f:fa:a9:4a:b4:cd:95:65:d7:48:50:ac:db:09:10:4e:0e:94: 03:af:a7:74:da:fc:5a:94:6c:05:d0:d8:e1:b7:97:39:dd:31: e5:25:43:f0:8c:95:0f:8c:0f:71:5c:ce:0e:d3:76:2d:87:64: b3:a6:31:31:1e:94:58:e5:64:8d:19:fc:5b:a4:7e:2c:07:a9: 9f:08:37:c7:98:d4:90:40:9a:1d:67:06:3e:99:26:a6:79:f9: b3:2b:d5:f2:fa:99:86:e5:a5:7a:11:00:a1:47:9d:b5:9a:b8: 9e:6c:cc:c5:b1:b4:00:56:c3:c3:0c:e6:ed:ba:e8:10:c5:49: 7f:91:57:78:56:6c:37:03:9e:f2:c8:96:dd:63:0e:ad:c5:c2: e3:d3:1b:96:43:eb:04:5e:06:56:99:ac:60:08:f6:aa:da:e7: 10:b1:92:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtQqYVe10thyYfklln/VuuGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxOGRiMjg4MjNmMzcwOGIyNTVhYTEyNGJhNmVmNzQxZDEx M2VhZjMwHhcNMjUxMjI0MTQwMDQ1WhcNMjUxMjI1MTQwMDQ1WjAzMTEwLwYDVQQD Eyg4YmM4YTQ5NWJmYTc0NWUzNjU0NmFlOTA2OGMxZTVhNGU3YmNiY2IzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmArnUokWP1I10hGBx6ryELnKzYe0 MKOP49xAFWhThXwZND82/l3QOW8jOCIMcoKfnn8Sfj5HtyIS5UHUwmLSt1FklExN sQkQIdjaiJ/MCR8fmKA+9ZzZsvbacMSA3Xq2pERJWdun/nHLApyDv+ACX8atqx1g ZxsUFDqmExsnXo2hWBY/zIHRcFpom7XLxattaeZGTx+1pCuI5GnAXlvMmw1QErjP siMq76i+ogbQ3pELxZlGJjFXYtVIyCMX7cNfy3VfVmU405q9VUNj6RHFo1eNaYrj XZVdfTBBiH7kafVtMeZlBiN03bM2/1ogyO/81Gdf4Hgaedl1gz3ONqzh4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIvIpJW/p0XjZUaukGjB5aTnvLyzMB8GA1UdIwQY MBaAFCGNsogj83CLJVqhJLpu90HRE+rzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQt NzlkYzNkMGJiZWQ4LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQtNzlkYzNkMGJiZWQ4 LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARc5x70lD yMZRHuyfqCgpqHaJIlAt0/oc9ogTMlwnFT9of7EGUBagU6U7DfX0Cr4AynVLJAbU 7qqV1Be8BZcg53Gyk5/JM99jR7tV+54j2z84GxWcA07uuulgT/qpSrTNlWXXSFCs 2wkQTg6UA6+ndNr8WpRsBdDY4beXOd0x5SVD8IyVD4wPcVzODtN2LYdks6YxMR6U WOVkjRn8W6R+LAepnwg3x5jUkECaHWcGPpkmpnn5syvV8vqZhuWlehEAoUedtZq4 nmzMxbG0AFbDwwzm7broEMVJf5FXeFZsNwOe8siW3WMOrcXC49MblkPrBF4GVpms YAj2qtrnELGSBw== -----END CERTIFICATE-----Generated at Wed Dec 24 15:12:32 2025 by rpki-client